US20130125242A1 - Client-server version control system for software applications - Google Patents

Client-server version control system for software applications Download PDF

Info

Publication number
US20130125242A1
US20130125242A1 US13/297,225 US201113297225A US2013125242A1 US 20130125242 A1 US20130125242 A1 US 20130125242A1 US 201113297225 A US201113297225 A US 201113297225A US 2013125242 A1 US2013125242 A1 US 2013125242A1
Authority
US
United States
Prior art keywords
computing device
version
versions
server
client computing
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US13/297,225
Other versions
US9594605B2 (en
Inventor
Augustin J. Farrugia
Gelareh TABAN
Amine El Kamel
Gianpaolo Fasoli
Srinivas Vedula
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Apple Inc
Original Assignee
Apple Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Apple Inc filed Critical Apple Inc
Priority to US13/297,225 priority Critical patent/US9594605B2/en
Assigned to APPLE INC. reassignment APPLE INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: VEDULA, SRINIVAS, FARRUGIA, AUGUSTIN J., FASOLI, GIANPAOLO, KAMEL, AMINE EL, TABAN, GELAREH
Priority to PCT/US2012/057944 priority patent/WO2013074206A1/en
Publication of US20130125242A1 publication Critical patent/US20130125242A1/en
Application granted granted Critical
Publication of US9594605B2 publication Critical patent/US9594605B2/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/541Interprogram communication via adapters, e.g. between incompatible applications
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/65Updates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/70Software maintenance or management
    • G06F8/71Version control; Configuration management

Definitions

  • This invention relates to computers and computer networks and more particularly to maintaining compatibility between versions of distributed computer software applications.
  • client-server computing architectures separate a client from a server and are generally implemented over computer networks such as the Internet, but not so limited.
  • Each client or server connected to a computer network is also referred to as a “node”.
  • the basic type of client-server architecture employs two types of nodes which are clients and servers.
  • client and server generally refer to software rather than the underlying computing platforms or devices or hardware, which are also sometimes referred to as “clients” and “servers”.
  • This architecture allows computing devices to share files and resources.
  • Each instance of the client software can send data requests to one or more connected servers.
  • the servers accept these requests, process them, and return the requested information to the client.
  • the clients are sometimes web browsers but not necessarily. In the present case the clients are generally not generic web browsers, however.
  • Servers typically include web servers, database servers, and email servers.
  • Client-server architecture enables the roles and responsibilities of the computing system to be distributed among several independent computer platforms that are coupled only through the network. Typically the data is stored on the server platforms, which generally have greater security controls than do most clients.
  • the protection of digital content transferred between computers over networks such as from a server to a client is important for many enterprises. Enterprises attempt to secure this protection by implementing some form of Digital Rights Management referent process.
  • the DRM process often involves encrypting the piece of content (e.g., encrypting the binary form of the content) to restrict usage to those who have been granted a right to the content.
  • Cryptography is a traditional method of protecting data in transit across a network. In its typical application, cryptography protects communications between two mutually trusting parties from thievery. However, in many digital file transfer applications today, e.g., for the transfer of audio or video content, the party that receives the content may try to break the DRM encryption that has been earlier applied to the content.
  • the weakest link in the resulting security is not the encrypted data but rather the overall cryptographic process.
  • one of the more successful DRM systems distributes music and video programs on line. This DRM system distributes to a user's computer content that has been similarly encrypted for all users. The user's computer then decrypts received content, generates local keys for encrypting the content, and uses these locally generated keys to re-encrypt the content.
  • DRM systems here is merely an example where the DRM system is a client application in terms of the portion of the DRM system resident at the client platform. A complementary portion of the DRM system is resident at the server platform. It is the nature of such DRM systems that they are frequently updated or changed, usually to enhance security or for other reasons. This introduces another known technology, which is referred to as Version Control or Revision Control, which is an aspect of software configuration management. This generally is the management of change to documents, programs (including so-called software applications), and other information stored as computer files. It is commonly used in software development where a number of people may be altering the same files. A version change is usually identified by a number or letter code, termed a revision number, revision level or the revision such as V1, V1.2, V2, etc.
  • version control systems which typically run as stand-alone applications but may be embedded in various types of software of other types and in various content management systems.
  • versions are backward-compatible, but not always. It is common for multiple versions of the same software application to be employed at different clients and for some clients to be using, for instance, version 1 while other clients are using version 2. At the same time the associated server may be using different versions.
  • the client device may in turn include an application management client that communicates with the server in terms of managing the versions.
  • the management client may add or remove applications in the client device based on a policy received from the server and may query the server to determine a currently available application.
  • the server may be able to install and serve new versions of an application at the clients while simultaneously serving an older version of the same application.
  • generally such systems do not also provide the security aspects, for instance in DRM, which imposes its own restrictions as identified by the present inventors.
  • the present inventors have identified that generally version control is not always suitable or optimum for distribution of certain types of applications, especially those involving security of content such as DRM.
  • the present system and method are not limited to DRM or any specific type of application distribution. Therefore, the present system is directed to providing optimized version control in a client-server computing architecture.
  • the present system is such that it always prefers to use the latest version of the application. This is especially advantageous when the application is security-related, such as a DRM application, where possibly the earlier version has been penetrated by hackers.
  • the present system is intended to be resistant to a declassification attack whereby the system forces use of an older version of the application, for instance a DRM application.
  • the system implements an optimized approach, which provides the maximum possible level of security in terms of version control. The goal is to maximize security (or more generally, the most recent version of an application) without hindering the client's freedom to operate, even if they may not have the latest version of the application. This approach may not be suitable for high-security applications such as transfers of money or important information. It is very useful for distribution of audio and video content where ease of access is more important than the security of the content.
  • the present system may tolerate sub-optimal security, while trying to maximize security overall.
  • the present system is not limited to distribution of DRM-type or other security oriented software applications (computer programs).
  • FIG. 1 shows a client-server architecture in accordance with the invention.
  • FIG. 2 shows in tabular form various possibilities of version distribution and illustrates the technical problem to which the present invention is directed.
  • FIG. 3 shows one type of version control without server compatibility.
  • FIG. 4 shows another type of version control with server compatibility.
  • FIG. 5 shows an optimized version control
  • FIG. 6 shows in a block diagram a computing system usable in accordance with the invention for the client or server platform.
  • FIG. 1 shows a mostly conventional client-server architecture, including an application server 20 , whose purpose is to distribute in this case application software to various clients which are designated Client 1 30 a , Client 2 30 b and Client N 30 c , which are connected to the application server conventionally via a computing network such as the Internet 26 but not so limited.
  • Each client has an associated local application storage or computer memory, respectively 34 a , 34 b and 34 c .
  • Each client platform can thereby store several applications.
  • the application may be or include DRM functionality and may well include other functionalities such as allowing downloading and playing of audio and video content.
  • the application server may also have an associated content server (not shown) which provides the content which is downloaded under control of the application server to the various clients.
  • a server application storage which is a computer memory which stores a number of versions of a particular application, here designated V1, V2, . . . VM. This is commonly the case where a number of versions of a particular application are active and in use at any one time. Similarly, each client may store one or more versions of each application. Also provided is a version control module 24 which is another computer program associated with the application server which carries out the functionality in accordance with the invention.
  • Module 24 generally manages version distribution to implement certain preferences or policies.
  • the preferences or policy carried out in accordance with the invention are: First, it is always preferred that the client use the latest version of the application, that is the newest in time or most recently updated version of a particular application. Similarly, the system should be resistant to a so-called “declassification attack”, which occurs when for some reason there is a requirement to use an older version of the application such as, for instance, a client or server which does not have the newest version of the application. Next, the goal is to implement if possible the optimized practices or best practices in terms of trying to insure that the first goal, which is the latest version, occurs as frequently as possible.
  • FIG. 2 illustrates in tabular form an initial case where the server only supports version 1 of a particular application.
  • the first column shows the application versions as supported by the server, which here only supports version 1. In other words, there has been no update to version 2 released to the server. Note that such updates are generally controlled by some external entity and may not reach each server or client at the same time.
  • the second column is the active application version(s) at the client. In some cases a client or a server may be able to use more than one version.
  • the third column indicates the version of the application supported by the operating system (O.S.) associated with a particular client.
  • O.S. operating system
  • the fourth column is a report of the version control for a particular configuration of the first three columns as explained below.
  • the last column is comments explaining each configuration in terms of adherence to policies or goals.
  • the second row of FIG. 2 involves a situation where the server is executing version 1 of an application, the client is running version 1, and the client operating system is also supporting version 1. In that case, the report is that version 1 is used and (as far as the O.S. is concerned) version 1 is the only available version.
  • the version control module at the server thereby verifies that the version used by both the server and the client matches requirements.
  • the server application is version 1
  • the client application is version 1
  • the operating system supports versions 1 and 2.
  • the report is that only version 1 is used but both versions 1 and 2 are available.
  • the version used matches requirements and further, it is possible for the server to deploy the newer version of the application (which is version 2) to the client and server.
  • the client application supports versions 1 and 2, but the operating system only version 1. As indicated this is a strange or undesirable or possibly insecure configuration. However, it is still operable, since in fact both the server and client can use version 1. This violates the first constraint or goal which that the most recent version of the security should be used if available.
  • the last case in FIG. 2 is that the server does not support the latest version of the security module (which is version 2) and thus this is considered poor or strange since as far as the client and operating system are concerned, version 2 is supported and version 2 is used, but the server only allows use of version 1.
  • version 2 is supported and version 2 is used, but the server only allows use of version 1.
  • FIG. 3 is similar to FIG. 2 in terms of its organization. However, here there has been a release of deployment of the newer version 2 to the server and there is also an absence of server backwards compatibility meaning that the server cannot now use version 1.
  • each of the first three cases is considered an invalid or poor or suboptimum configuration since at least one of the three entities is capable of supporting version 2, but one does not, resulting in defaulting to version 1 rather than the preferred version 2. Only the last case, where each entity is capable of supporting or executing version 2, is optimized and meets the goal of using the latest version.
  • FIG. 4 is similar to the situation of FIG. 3 , but here there is serve backwards compatibility in terms of the versions.
  • each of the first two cases is considered a strange or undesirable configuration, because it does not use the latest version of the application. That's because in each of these cases there is a forced use of version 1 rather than the preferred version 2.
  • version 1 must be used because the operating system is only capable of supporting version 1. Only the last case is the optimized version where all entities can use or support version 2 and hence that is used.
  • the server only can support one version.
  • the server can support both versions (or M versions where may be 2, 3, 4, etc., as is more common and as in FIG. 1 ).
  • FIG. 5 illustrates the overall preferred situation in accordance with the invention, with the server in some cases deploying one version and in other cases deploying both versions.
  • version 1 in each of the first three cases version 1 is used because one of the relevant entities only uses or supports version 1, whereas in the last two cases version 2 is used since all entities use or support version 2. This involves suitable interaction to update the operating system of each client.
  • FIG. 6 shows in a block diagram relevant portions of a conventional computing device (system or platform) 160 in accordance with the invention which carries out the method and its associated processes as described above.
  • This is, e.g., a server platform, computer, mobile telephone, Smart Phone, personal digital assistant or similar device, or part of such a device and includes conventional hardware components executing in one embodiment software (computer code) which carries out the above examples.
  • This code may be, e.g., in the C or C++ computer language or its functionality may be expressed in the form of firmware or hardware logic; writing such code or designing such logic would be routine in light of the above examples and logical expressions.
  • the above examples are not limiting. Only relevant portions of this apparatus are shown for simplicity.
  • FIG. 6 thus illustrates detail of a typical and conventional embodiment of computing system 160 that may be employed to implement processing functionality in embodiments of the invention as indicated in FIGS. 2-5 for the server platform and user device.
  • Computing systems of this type may be used in a computer server or user (client) computer or other computing device, for example.
  • client computer or other computing device
  • Computing system 160 may represent, for example, a desktop, laptop or notebook computer, hand-held computing device (personal digital assistant (PDA), cell phone, palmtop, etc.), mainframe, server, client, or any other type of special or general purpose computing device as may be desirable or appropriate for a given application or environment.
  • PDA personal digital assistant
  • mainframe server, client, or any other type of special or general purpose computing device as may be desirable or appropriate for a given application or environment.
  • Computing system 160 can include one or more processors, such as a processor 164 .
  • processor 164 can be implemented using a general or special purpose processing engine such as, for example, a microprocessor, microcontroller or other control logic.
  • processor 164 is connected to a bus 162 or other communications medium.
  • Computing system 160 can also include a main memory 168 , such as random access memory (RAM) or other dynamic memory, for storing information and instructions to be executed by processor 164 .
  • Main memory 168 also may be used for storing temporary variables or other intermediate information during execution of instructions to be executed by processor 164 .
  • Computing system 160 may likewise include a read only memory (ROM) or other static storage device coupled to bus 162 for storing static information and instructions for processor 164 .
  • ROM read only memory
  • Computing system 160 may also include information storage system 170 , which may include, for example, a media drive 162 and a removable storage interface 180 .
  • the media drive 162 may include a drive or other mechanism to support fixed or removable storage media, such as flash memory, a hard disk drive, a floppy disk drive, a magnetic tape drive, an optical disk drive, a compact disk (CD) or digital versatile disk (DVD) drive (R or RW), or other removable or fixed media drive.
  • Storage media 178 may include, for example, a hard disk, floppy disk, magnetic tape, optical disk, CD or DVD, or other fixed or removable medium that is read by and written to by media drive 162 . As these examples illustrate, the storage media 178 may include a computer-readable storage medium having stored therein particular computer software or data.
  • information storage system 170 may include other similar components for allowing computer programs or other instructions or data to be loaded into computing system 160 .
  • Such components may include, for example, a removable storage unit 182 and an interface 180 , such as a program cartridge and cartridge interface, a removable memory (for example, a flash memory or other removable memory module) and memory slot, and other removable storage units 182 and interfaces 180 that allow software and data to be transferred from the removable storage unit 178 to computing system 160 .
  • Computing system 160 can also include a communications interface 184 .
  • Communications interface 184 can be used to allow software and data to be transferred between computing system 160 and external devices.
  • Examples of communications interface 184 can include a modem, a network interface (such as an Ethernet or other network interface card (NIC)), a communications port (such as for example, a USB port), a PCMCIA slot and card, etc.
  • Software and data transferred via communications interface 184 are in the form of signals which can be electronic, electromagnetic, optical or other signals capable of being received by communications interface 184 . These signals are provided to communications interface 184 via a channel 188 .
  • This channel 188 may carry signals and may be implemented using a wireless medium, wire or cable, fiber optics, or other communications medium.
  • Some examples of a channel include a phone line, a cellular phone link, an RF link, a network interface, a local or wide area network, and other communications channels.
  • computer program product may be used generally to refer to media such as, for example, memory 168 , storage device 178 , or storage unit 182 .
  • These and other forms of computer-readable media may store one or more instructions for use by processor 164 , to cause the processor to perform specified operations.
  • Such instructions generally referred to as “computer program code” (which may be grouped in the form of computer programs or other groupings), when executed, enable the computing system 160 to perform functions of embodiments of the invention.
  • the code may directly cause the processor to perform specified operations, be compiled to do so, and/or be combined with other software, hardware, and/or firmware elements (e.g., libraries for performing standard functions) to do so.
  • the software may be stored in a computer-readable medium and loaded into computing system 160 using, for example, removable storage drive 174 , drive 172 or communications interface 184 .
  • the control logic in this example, software instructions or computer program code, when executed by the processor 164 , causes the processor 164 to perform the functions of embodiments of the invention as described herein.

Abstract

A software version control system manages versioned applications in a client-server computing system environment. Thereby this is a management system for computer application (software) distribution where a number of client devices coupled to a server may be executing different versions of a particular computing application. The system manages updates to the applications and enforces rules or policies to use the most recent version whenever possible.

Description

    FIELD OF THE INVENTION
  • This invention relates to computers and computer networks and more particularly to maintaining compatibility between versions of distributed computer software applications.
    • BACKGROUND
  • As is well known in the computer field, client-server computing architectures separate a client from a server and are generally implemented over computer networks such as the Internet, but not so limited. Each client or server connected to a computer network is also referred to as a “node”. The basic type of client-server architecture employs two types of nodes which are clients and servers. Note that in this context the terms “client” and “server” generally refer to software rather than the underlying computing platforms or devices or hardware, which are also sometimes referred to as “clients” and “servers”. This architecture allows computing devices to share files and resources. Each instance of the client software can send data requests to one or more connected servers. In turn, the servers accept these requests, process them, and return the requested information to the client. The clients are sometimes web browsers but not necessarily. In the present case the clients are generally not generic web browsers, however. Servers typically include web servers, database servers, and email servers.
  • Client-server architecture enables the roles and responsibilities of the computing system to be distributed among several independent computer platforms that are coupled only through the network. Typically the data is stored on the server platforms, which generally have greater security controls than do most clients.
  • In a somewhat related field, the protection of digital content transferred between computers over networks such as from a server to a client is important for many enterprises. Enterprises attempt to secure this protection by implementing some form of Digital Rights Management referent process. The DRM process often involves encrypting the piece of content (e.g., encrypting the binary form of the content) to restrict usage to those who have been granted a right to the content.
  • Cryptography is a traditional method of protecting data in transit across a network. In its typical application, cryptography protects communications between two mutually trusting parties from thievery. However, in many digital file transfer applications today, e.g., for the transfer of audio or video content, the party that receives the content may try to break the DRM encryption that has been earlier applied to the content.
  • In many known DRM systems today, the weakest link in the resulting security is not the encrypted data but rather the overall cryptographic process. For instance, one of the more successful DRM systems distributes music and video programs on line. This DRM system distributes to a user's computer content that has been similarly encrypted for all users. The user's computer then decrypts received content, generates local keys for encrypting the content, and uses these locally generated keys to re-encrypt the content.
  • The example of DRM systems here is merely an example where the DRM system is a client application in terms of the portion of the DRM system resident at the client platform. A complementary portion of the DRM system is resident at the server platform. It is the nature of such DRM systems that they are frequently updated or changed, usually to enhance security or for other reasons. This introduces another known technology, which is referred to as Version Control or Revision Control, which is an aspect of software configuration management. This generally is the management of change to documents, programs (including so-called software applications), and other information stored as computer files. It is commonly used in software development where a number of people may be altering the same files. A version change is usually identified by a number or letter code, termed a revision number, revision level or the revision such as V1, V1.2, V2, etc.
  • There are a number of known version control systems which typically run as stand-alone applications but may be embedded in various types of software of other types and in various content management systems. Typically such versions are backward-compatible, but not always. It is common for multiple versions of the same software application to be employed at different clients and for some clients to be using, for instance, version 1 while other clients are using version 2. At the same time the associated server may be using different versions.
  • There are known version controls for application servers which may deploy sets of applications to many client devices. These typically manage updates to the applications and provide other management to deployment of the applications. The client device may in turn include an application management client that communicates with the server in terms of managing the versions. The management client may add or remove applications in the client device based on a policy received from the server and may query the server to determine a currently available application.
  • Thus, the server may be able to install and serve new versions of an application at the clients while simultaneously serving an older version of the same application. However, generally such systems do not also provide the security aspects, for instance in DRM, which imposes its own restrictions as identified by the present inventors.
    • SUMMARY
  • The present inventors have identified that generally version control is not always suitable or optimum for distribution of certain types of applications, especially those involving security of content such as DRM. However, the present system and method are not limited to DRM or any specific type of application distribution. Therefore, the present system is directed to providing optimized version control in a client-server computing architecture. The present system is such that it always prefers to use the latest version of the application. This is especially advantageous when the application is security-related, such as a DRM application, where possibly the earlier version has been penetrated by hackers.
  • Further, the present system is intended to be resistant to a declassification attack whereby the system forces use of an older version of the application, for instance a DRM application. Further, the system implements an optimized approach, which provides the maximum possible level of security in terms of version control. The goal is to maximize security (or more generally, the most recent version of an application) without hindering the client's freedom to operate, even if they may not have the latest version of the application. This approach may not be suitable for high-security applications such as transfers of money or important information. It is very useful for distribution of audio and video content where ease of access is more important than the security of the content. The present system may tolerate sub-optimal security, while trying to maximize security overall. Of course, the present system is not limited to distribution of DRM-type or other security oriented software applications (computer programs).
    • BRIEF DESCRIPTION OF THE FIGURES
  • FIG. 1 shows a client-server architecture in accordance with the invention.
  • FIG. 2 shows in tabular form various possibilities of version distribution and illustrates the technical problem to which the present invention is directed.
  • FIG. 3 shows one type of version control without server compatibility.
  • FIG. 4 shows another type of version control with server compatibility.
  • FIG. 5 shows an optimized version control.
  • FIG. 6 shows in a block diagram a computing system usable in accordance with the invention for the client or server platform.
    •  DETAILED DESCRIPTION
  • FIG. 1 shows a mostly conventional client-server architecture, including an application server 20, whose purpose is to distribute in this case application software to various clients which are designated Client 1 30 a, Client 2 30 b and Client N 30 c, which are connected to the application server conventionally via a computing network such as the Internet 26 but not so limited. There may be several such application servers 20 and many, even millions, of such clients. Each client has an associated local application storage or computer memory, respectively 34 a, 34 b and 34 c. Each client platform can thereby store several applications. In this situation the application may be or include DRM functionality and may well include other functionalities such as allowing downloading and playing of audio and video content. In that case, the application server may also have an associated content server (not shown) which provides the content which is downloaded under control of the application server to the various clients.
  • Associated with the application server is a server application storage, which is a computer memory which stores a number of versions of a particular application, here designated V1, V2, . . . VM. This is commonly the case where a number of versions of a particular application are active and in use at any one time. Similarly, each client may store one or more versions of each application. Also provided is a version control module 24 which is another computer program associated with the application server which carries out the functionality in accordance with the invention.
  • Module 24 generally manages version distribution to implement certain preferences or policies. As described above, the preferences or policy carried out in accordance with the invention are: First, it is always preferred that the client use the latest version of the application, that is the newest in time or most recently updated version of a particular application. Similarly, the system should be resistant to a so-called “declassification attack”, which occurs when for some reason there is a requirement to use an older version of the application such as, for instance, a client or server which does not have the newest version of the application. Next, the goal is to implement if possible the optimized practices or best practices in terms of trying to insure that the first goal, which is the latest version, occurs as frequently as possible.
  • Thus FIG. 2 illustrates in tabular form an initial case where the server only supports version 1 of a particular application. Each of the first three columns of FIG. 2 as indicated across the top row provides information about version distribution for one involved computing entity. The first column shows the application versions as supported by the server, which here only supports version 1. In other words, there has been no update to version 2 released to the server. Note that such updates are generally controlled by some external entity and may not reach each server or client at the same time. The second column is the active application version(s) at the client. In some cases a client or a server may be able to use more than one version. The third column indicates the version of the application supported by the operating system (O.S.) associated with a particular client.
  • The fourth column is a report of the version control for a particular configuration of the first three columns as explained below. The last column is comments explaining each configuration in terms of adherence to policies or goals. Thus the second row of FIG. 2 involves a situation where the server is executing version 1 of an application, the client is running version 1, and the client operating system is also supporting version 1. In that case, the report is that version 1 is used and (as far as the O.S. is concerned) version 1 is the only available version. As indicated by the comment, the version control module at the server thereby verifies that the version used by both the server and the client matches requirements.
  • In the second case, which is the third row of column 2, the server application is version 1, the client application is version 1, and the operating system supports versions 1 and 2. In this case, the report is that only version 1 is used but both versions 1 and 2 are available. In this case, again the version used matches requirements and further, it is possible for the server to deploy the newer version of the application (which is version 2) to the client and server.
  • In the fourth row of FIG. 1, the client application supports versions 1 and 2, but the operating system only version 1. As indicated this is a strange or undesirable or possibly insecure configuration. However, it is still operable, since in fact both the server and client can use version 1. This violates the first constraint or goal which that the most recent version of the security should be used if available.
  • The last case in FIG. 2 is that the server does not support the latest version of the security module (which is version 2) and thus this is considered poor or strange since as far as the client and operating system are concerned, version 2 is supported and version 2 is used, but the server only allows use of version 1.
  • FIG. 3 is similar to FIG. 2 in terms of its organization. However, here there has been a release of deployment of the newer version 2 to the server and there is also an absence of server backwards compatibility meaning that the server cannot now use version 1. Here, each of the first three cases is considered an invalid or poor or suboptimum configuration since at least one of the three entities is capable of supporting version 2, but one does not, resulting in defaulting to version 1 rather than the preferred version 2. Only the last case, where each entity is capable of supporting or executing version 2, is optimized and meets the goal of using the latest version.
  • FIG. 4 is similar to the situation of FIG. 3, but here there is serve backwards compatibility in terms of the versions. Here, each of the first two cases is considered a strange or undesirable configuration, because it does not use the latest version of the application. That's because in each of these cases there is a forced use of version 1 rather than the preferred version 2. And in the third case here, version 1 must be used because the operating system is only capable of supporting version 1. Only the last case is the optimized version where all entities can use or support version 2 and hence that is used.
  • Hence, in FIG. 3 the server only can support one version. In FIG. 4 the server can support both versions (or M versions where may be 2, 3, 4, etc., as is more common and as in FIG. 1).
  • FIG. 5 illustrates the overall preferred situation in accordance with the invention, with the server in some cases deploying one version and in other cases deploying both versions. In this case, in each of the first three cases version 1 is used because one of the relevant entities only uses or supports version 1, whereas in the last two cases version 2 is used since all entities use or support version 2. This involves suitable interaction to update the operating system of each client.
  • FIG. 6 shows in a block diagram relevant portions of a conventional computing device (system or platform) 160 in accordance with the invention which carries out the method and its associated processes as described above. This is, e.g., a server platform, computer, mobile telephone, Smart Phone, personal digital assistant or similar device, or part of such a device and includes conventional hardware components executing in one embodiment software (computer code) which carries out the above examples. This code may be, e.g., in the C or C++ computer language or its functionality may be expressed in the form of firmware or hardware logic; writing such code or designing such logic would be routine in light of the above examples and logical expressions. Of course, the above examples are not limiting. Only relevant portions of this apparatus are shown for simplicity.
  • FIG. 6 thus illustrates detail of a typical and conventional embodiment of computing system 160 that may be employed to implement processing functionality in embodiments of the invention as indicated in FIGS. 2-5 for the server platform and user device. Computing systems of this type may be used in a computer server or user (client) computer or other computing device, for example. Those skilled in the relevant art will also recognize how to implement embodiments of the invention using other computer systems or architectures. Computing system 160 may represent, for example, a desktop, laptop or notebook computer, hand-held computing device (personal digital assistant (PDA), cell phone, palmtop, etc.), mainframe, server, client, or any other type of special or general purpose computing device as may be desirable or appropriate for a given application or environment. Computing system 160 can include one or more processors, such as a processor 164. Processor 164 can be implemented using a general or special purpose processing engine such as, for example, a microprocessor, microcontroller or other control logic. In this example, processor 164 is connected to a bus 162 or other communications medium.
  • Computing system 160 can also include a main memory 168, such as random access memory (RAM) or other dynamic memory, for storing information and instructions to be executed by processor 164. Main memory 168 also may be used for storing temporary variables or other intermediate information during execution of instructions to be executed by processor 164. Computing system 160 may likewise include a read only memory (ROM) or other static storage device coupled to bus 162 for storing static information and instructions for processor 164.
  • Computing system 160 may also include information storage system 170, which may include, for example, a media drive 162 and a removable storage interface 180. The media drive 162 may include a drive or other mechanism to support fixed or removable storage media, such as flash memory, a hard disk drive, a floppy disk drive, a magnetic tape drive, an optical disk drive, a compact disk (CD) or digital versatile disk (DVD) drive (R or RW), or other removable or fixed media drive. Storage media 178 may include, for example, a hard disk, floppy disk, magnetic tape, optical disk, CD or DVD, or other fixed or removable medium that is read by and written to by media drive 162. As these examples illustrate, the storage media 178 may include a computer-readable storage medium having stored therein particular computer software or data.
  • In alternative embodiments, information storage system 170 may include other similar components for allowing computer programs or other instructions or data to be loaded into computing system 160. Such components may include, for example, a removable storage unit 182 and an interface 180, such as a program cartridge and cartridge interface, a removable memory (for example, a flash memory or other removable memory module) and memory slot, and other removable storage units 182 and interfaces 180 that allow software and data to be transferred from the removable storage unit 178 to computing system 160.
  • Computing system 160 can also include a communications interface 184. Communications interface 184 can be used to allow software and data to be transferred between computing system 160 and external devices. Examples of communications interface 184 can include a modem, a network interface (such as an Ethernet or other network interface card (NIC)), a communications port (such as for example, a USB port), a PCMCIA slot and card, etc. Software and data transferred via communications interface 184 are in the form of signals which can be electronic, electromagnetic, optical or other signals capable of being received by communications interface 184. These signals are provided to communications interface 184 via a channel 188. This channel 188 may carry signals and may be implemented using a wireless medium, wire or cable, fiber optics, or other communications medium. Some examples of a channel include a phone line, a cellular phone link, an RF link, a network interface, a local or wide area network, and other communications channels.
  • In this disclosure, the terms “computer program product,” “computer-readable medium” and the like may be used generally to refer to media such as, for example, memory 168, storage device 178, or storage unit 182. These and other forms of computer-readable media may store one or more instructions for use by processor 164, to cause the processor to perform specified operations. Such instructions, generally referred to as “computer program code” (which may be grouped in the form of computer programs or other groupings), when executed, enable the computing system 160 to perform functions of embodiments of the invention. Note that the code may directly cause the processor to perform specified operations, be compiled to do so, and/or be combined with other software, hardware, and/or firmware elements (e.g., libraries for performing standard functions) to do so.
  • In an embodiment where the elements are implemented using software, the software may be stored in a computer-readable medium and loaded into computing system 160 using, for example, removable storage drive 174, drive 172 or communications interface 184. The control logic (in this example, software instructions or computer program code), when executed by the processor 164, causes the processor 164 to perform the functions of embodiments of the invention as described herein.
  • This disclosure is illustrative and not limiting. Further modifications will be apparent to these skilled in the art in light of this disclosure and are intended to fall within the scope of the appended claims.

Claims (16)

1. A method of managing a computer software application having a plurality of versions, wherein the application is associated with a client computing device which interacts with a server computing device, the method comprising the acts of:
(a) a processor determining which of the versions the server computing device supports;
(b) the processor determining which of the versions resides on the client computing device;
(c) comparing the results of (a) and (b) to determine any common versions;
(d) determining which of the common versions is most recent;
(e) storing in a computer memory an indication of the most recent common version; and
(f) directing the client computing device and the server computing device to use the most recent common version.
2. The method of claim 1, further comprising the acts of:
determining which of the versions is supported by an operating system of the client computing device; and
directing the client computing device in (f) to use the most recent common version only if that version is also supported by the operating system.
3. The method of claim 1, wherein the server computing device if it supports a later version of the application also supports at least one earlier version.
4. The method of claim 1, further comprising the act of reporting which version is the most recent common version in (f) and reporting if any other versions are available.
5. The method of claim 1, wherein the software application includes digital rights management to protect content data transmitted to the client computing device.
6. The method of claim 5, wherein the digital rights management includes delivery of cryptographic keys to the client computing device, for decrypting the content data.
7. A non-transitory computer readable storage medium storing computer code to carry out the method of claim 1.
8. A computing system programmed to carry out the method of claim 1.
9. The method of claim 1, wherein the method is performed by a module associated with the server computing device.
10. Apparatus for managing a computer software application having a plurality of versions, wherein the application is associated with a client computing device which interacts with a server computing device, the apparatus comprising:
(a) a processor which determines which of the versions the server computing device supports;
(b) the processor determines which of the versions resides on the client computing device;
(c) the processor compares the results of (a) and (b) to determine any common versions;
(d) the processor determines which of the common versions is most recent;
(e) a computer memory associated with the processor which stores an indication of the most recent common version; and
(f) the processor being adapted to direct the client computing device and the server computing device to use the most recent common version.
11. The apparatus of claim 10, wherein the apparatus:
determines which of the versions is supported by an operating system of the client computing device; and
directs the client computing device in (f) to use the most recent common version only if that version is also supported by the operating system.
12. The apparatus of claim 10, wherein the server computing device if it supports a later version of the application also supports at least one earlier version.
13. The apparatus of claim 10, wherein the apparatus reports which version is the most recent common version in (f) and reports if any other versions are available.
14. The apparatus of claim 10, wherein the software application includes digital rights management to protect content data transmitted to the client computing device.
15. The apparatus of claim 14, wherein the digital rights management includes delivery of cryptographic keys to the client computing device, for decrypting the content data.
16. The apparatus of claim 14, wherein the apparatus shares the processor with the server computing device.
US13/297,225 2011-11-15 2011-11-15 Client-server version control system for software applications Active US9594605B2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US13/297,225 US9594605B2 (en) 2011-11-15 2011-11-15 Client-server version control system for software applications
PCT/US2012/057944 WO2013074206A1 (en) 2011-11-15 2012-09-28 Client-server version control system for software applications

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US13/297,225 US9594605B2 (en) 2011-11-15 2011-11-15 Client-server version control system for software applications

Publications (2)

Publication Number Publication Date
US20130125242A1 true US20130125242A1 (en) 2013-05-16
US9594605B2 US9594605B2 (en) 2017-03-14

Family

ID=47073524

Family Applications (1)

Application Number Title Priority Date Filing Date
US13/297,225 Active US9594605B2 (en) 2011-11-15 2011-11-15 Client-server version control system for software applications

Country Status (2)

Country Link
US (1) US9594605B2 (en)
WO (1) WO2013074206A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140130032A1 (en) * 2012-11-05 2014-05-08 Samsung Electronics Co., Ltd. Method and apparatus for managing application update information in an electronic device
US20160117167A1 (en) * 2012-04-12 2016-04-28 International Business Machines Corporation Managing incrementally applied system updates
US10643147B2 (en) 2016-05-31 2020-05-05 International Business Machines Corporation Coordinated version control system, method, and recording medium for parameter sensitive applications

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9992319B2 (en) 2015-02-08 2018-06-05 Lg Electronics Inc. Method of outputting screens from server and client devices in performing mirrorlink
KR20210055387A (en) 2019-11-07 2021-05-17 삼성전자주식회사 Context based application providing server and controlling method thereof
US11157253B1 (en) * 2020-06-30 2021-10-26 Td Ameritrade Ip Company, Inc. Computer-automated software release and deployment architecture
US11809862B2 (en) 2021-07-14 2023-11-07 Red Hat, Inc. Related change analysis of multiple version control systems

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5951639A (en) * 1996-02-14 1999-09-14 Powertv, Inc. Multicast downloading of software and data modules and their compatibility requirements
US6006034A (en) * 1996-09-05 1999-12-21 Open Software Associates, Ltd. Systems and methods for automatic application version upgrading and maintenance
US20010029178A1 (en) * 1996-08-07 2001-10-11 Criss Mark A. Wireless software upgrades with version control
US6684328B2 (en) * 1997-12-17 2004-01-27 Sony Corporation Method and apparatus for determining compatibility of computer programs
US20050193387A1 (en) * 2004-02-12 2005-09-01 Pioneer Corporation Version update method
US20090063584A1 (en) * 2007-08-31 2009-03-05 Microsoft Corporation Versioning management
US20100031366A1 (en) * 2006-05-05 2010-02-04 Omnifone Limited Method of Providing Digital Rights Management for Music Content by Means of a Flat-Rate Subscription
US20100281102A1 (en) * 2009-05-02 2010-11-04 Chinta Madhav Methods and systems for launching applications into existing isolation environments
US7930273B1 (en) * 2007-07-30 2011-04-19 Adobe Systems Incorporated Version management for application execution environment
US8001083B1 (en) * 2007-05-09 2011-08-16 Vmware, Inc. Repository including version management
US8465164B2 (en) * 2010-09-24 2013-06-18 International Business Machines Corporation Mirror assembly including foam encompassed within a polymer matrix
US8490077B2 (en) * 2008-05-15 2013-07-16 Microsoft Corporation Runtime versioning and distribution of dynamic web-elements

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6748532B1 (en) 1999-10-29 2004-06-08 Sun Microsystems, Inc. Universal smart card access system
US6970849B1 (en) * 1999-12-17 2005-11-29 Microsoft Corporation Inter-server communication using request with encrypted parameter
US7039801B2 (en) * 2000-06-30 2006-05-02 Microsoft Corporation System and method for integrating secure and non-secure software objects
US20020048372A1 (en) * 2000-10-19 2002-04-25 Eng-Whatt Toh Universal signature object for digital data
US6851113B2 (en) * 2001-06-29 2005-02-01 International Business Machines Corporation Secure shell protocol access control
US7519950B2 (en) * 2005-02-25 2009-04-14 Microsoft Corporation Method and system for version negotiation of distributed objects
US7805403B2 (en) 2007-01-07 2010-09-28 Apple Inc. Synchronization methods and systems
CA2590989C (en) 2007-06-05 2014-02-11 Diversinet Corp. Protocol and method for client-server mutual authentication using event-based otp
EP2020797B1 (en) 2007-08-02 2016-06-15 Apple Inc. Client-server Opaque token passing apparatus and method

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5951639A (en) * 1996-02-14 1999-09-14 Powertv, Inc. Multicast downloading of software and data modules and their compatibility requirements
US20010029178A1 (en) * 1996-08-07 2001-10-11 Criss Mark A. Wireless software upgrades with version control
US6006034A (en) * 1996-09-05 1999-12-21 Open Software Associates, Ltd. Systems and methods for automatic application version upgrading and maintenance
US6684328B2 (en) * 1997-12-17 2004-01-27 Sony Corporation Method and apparatus for determining compatibility of computer programs
US20050193387A1 (en) * 2004-02-12 2005-09-01 Pioneer Corporation Version update method
US20100031366A1 (en) * 2006-05-05 2010-02-04 Omnifone Limited Method of Providing Digital Rights Management for Music Content by Means of a Flat-Rate Subscription
US8001083B1 (en) * 2007-05-09 2011-08-16 Vmware, Inc. Repository including version management
US7930273B1 (en) * 2007-07-30 2011-04-19 Adobe Systems Incorporated Version management for application execution environment
US20090063584A1 (en) * 2007-08-31 2009-03-05 Microsoft Corporation Versioning management
US8490077B2 (en) * 2008-05-15 2013-07-16 Microsoft Corporation Runtime versioning and distribution of dynamic web-elements
US20100281102A1 (en) * 2009-05-02 2010-11-04 Chinta Madhav Methods and systems for launching applications into existing isolation environments
US8465164B2 (en) * 2010-09-24 2013-06-18 International Business Machines Corporation Mirror assembly including foam encompassed within a polymer matrix

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160117167A1 (en) * 2012-04-12 2016-04-28 International Business Machines Corporation Managing incrementally applied system updates
US10564953B2 (en) * 2012-04-12 2020-02-18 International Business Machines Corporation Managing incrementally applied system updates
US20140130032A1 (en) * 2012-11-05 2014-05-08 Samsung Electronics Co., Ltd. Method and apparatus for managing application update information in an electronic device
US10643147B2 (en) 2016-05-31 2020-05-05 International Business Machines Corporation Coordinated version control system, method, and recording medium for parameter sensitive applications
US10657459B2 (en) 2016-05-31 2020-05-19 International Business Machines Corporation Coordinated version control system, method, and recording medium for parameter sensitive applications
US11669502B2 (en) 2016-05-31 2023-06-06 International Business Machines Corporation Coordinated version control system, method, and recording medium for parameter sensitive applications

Also Published As

Publication number Publication date
WO2013074206A1 (en) 2013-05-23
US9594605B2 (en) 2017-03-14

Similar Documents

Publication Publication Date Title
US11301575B2 (en) Secure data synchronization
CN108140097B (en) Passive encryption of organised data
US9594605B2 (en) Client-server version control system for software applications
CN109416720B (en) Maintaining operating system secrets across resets
US9742777B2 (en) Centralized selective application approval for mobile devices
US7171557B2 (en) System for optimized key management with file groups
US7219230B2 (en) Optimizing costs associated with managing encrypted data
EP2293490A1 (en) Information processing device, encryption key management method, computer program and integrated circuit
US9892269B2 (en) Techniques for data monitoring to mitigate transitive problem in object-oriented contexts
US11625469B2 (en) Prevention of organizational data leakage across platforms based on device status
JP2006244486A (en) Method for forming right of use for item on bases of access right and computer readable medium
WO2018171171A1 (en) Methods and apparatus for containerized secure computing resources
US8656159B1 (en) Versioning of modifiable encrypted documents
US20220092155A1 (en) Protecting an item of software
US9058472B1 (en) System and method of applying access rules to files transmitted between computers
US10229276B2 (en) Method and apparatus for document author control of digital rights management
Silviu An Overview of Security Issues in Smart Contracts on the Blockchain
US11790057B2 (en) Controlling program execution using an access key
EP2881887B1 (en) System and method of applying access rules to files transmitted between computers

Legal Events

Date Code Title Description
AS Assignment

Owner name: APPLE INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:FARRUGIA, AUGUSTIN J.;TABAN, GELAREH;KAMEL, AMINE EL;AND OTHERS;SIGNING DATES FROM 20111215 TO 20111216;REEL/FRAME:027652/0886

FEPP Fee payment procedure

Free format text: PAYOR NUMBER ASSIGNED (ORIGINAL EVENT CODE: ASPN); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

STCF Information on status: patent grant

Free format text: PATENTED CASE

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 4